101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.

Server stats:

491
active users

#XorDdos

0 posts0 participants0 posts today
Brian Greenberg :verified:<p>⚠️ Botnet alert: A newly uncovered XorDDoS controller is widening the threat surface.</p><p>🛠️ Attackers are targeting:<br>🐧 Linux servers<br>🐳 Docker environments<br>🔌 IoT infrastructure</p><p>Their method?<br>🔐 SSH brute-force<br>♻️ Persistence via cron jobs and init scripts<br>📍 71% of detected activity focused on U.S. systems<br>🧠 Indicators suggest Chinese-speaking actors</p><p>This isn’t just noise — it’s a sustained, evolving threat to cloud and edge ecosystems.</p><p><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/XorDDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XorDDoS</span></a> <a href="https://infosec.exchange/tags/Botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Botnet</span></a> <a href="https://infosec.exchange/tags/LinuxSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LinuxSecurity</span></a> <a href="https://infosec.exchange/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntelligence</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> <a href="https://infosec.exchange/tags/cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloud</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <br><a href="https://thehackernews.com/2025/04/experts-uncover-new-xorddos-controller.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thehackernews.com/2025/04/expe</span><span class="invisible">rts-uncover-new-xorddos-controller.html</span></a></p>
🛡 H3lium@infosec.exchange/:~# :blinking_cursor:​<p>"🔍 <strong>Deep Dive into XorDDoS Behavior</strong> 🧠"</p><p>Before compromising a device, the XorDDoS Trojan initiates a scanning process using HTTP requests to identify potential vulnerabilities. The attackers probe for an HTTP service susceptible to directory traversal, aiming to access the /etc/passwd file. Once vulnerabilities are identified, the attackers use SSH brute-force attacks to gain initial access, followed by malware deployment. The Trojan employs XOR encryption for data related to its execution and communicates with C2 servers, awaiting commands. </p><p>The XorDDoS Trojan continues to pose a threat by evolving its tactics, and comprehensive security measures are necessary to mitigate its impact.</p><p>Please see the source for more details and an extensive list of IoC's! </p><p>Source: <a href="https://unit42.paloaltonetworks.com/new-linux-xorddos-trojan-campaign-delivers-malware/" rel="nofollow noopener" target="_blank">Palo Alto Networks - Unit 42</a></p><p>Tags: <a href="https://infosec.exchange/tags/XorDDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XorDDoS</span></a> <a href="https://infosec.exchange/tags/TrojanBehavior" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrojanBehavior</span></a> <a href="https://infosec.exchange/tags/HTTPScanning" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTTPScanning</span></a> <a href="https://infosec.exchange/tags/DirectoryTraversal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DirectoryTraversal</span></a> <a href="https://infosec.exchange/tags/SSHBruteForce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSHBruteForce</span></a> <a href="https://infosec.exchange/tags/Encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Encryption</span></a> <a href="https://infosec.exchange/tags/C2Communication" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>C2Communication</span></a> 🕵️‍♂️🔒🌍</p>